SECURE NEXUS LTD

Cloud Security Assessments

Cloud Security Assessments for AWS, GCP, and Azure involve evaluating identity management, networking, encryption, monitoring, and incident response. Focus areas include IAM, VPC configurations, data encryption, and compliance, aiming to enhance security controls and mitigate risks in cloud environments while ensuring regulatory compliance.

Features

• Cloud Security Architecture Review
• Identity and Access Management (IAM) Audit
• Network Security Assessment
• Data Encryption Analysis
• Logging and Monitoring Setup
• Incident Response Planning
• Compliance and Governance Check
• Security Automation Integration
• Documentation and Policy Review
• Risk Assessment and Mitigation

Benefits

• Enhanced Security Posture
• Risk Mitigation
• Compliance Assurance
• Cost-Effective Security Measures
• Optimised Performance
• Incident Response Readiness
• Efficient Resource Utilisation
• Vendor and Service Provider Confidence
• Strategic Security Roadmap
• Increased Employee Security Awareness

£300 a unit an hour

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at rsetchfield@securenexus.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

990515078736422

Contact

Raymond Setchfield
07973573734
rsetchfield@securenexus.co.uk

Planning

• Planning service: Yes
• How the planning service works: Our service assists buyers in meticulously planning and implementing cloud hosting or software services, ensuring a seamless and secure transition to the cloud. Beginning with a thorough assessment of organisational needs, we collaborate closely with buyers to define objectives, performance requirements, and compliance considerations. Our experts provide personalised guidance in selecting the most suitable cloud service providers, such as AWS, GCP, or Azure, tailored to the unique demands of the buyer's operations.; ; We facilitate a comprehensive system design and assurance process, evaluating the architecture and recommending optimal configurations. Our assistance extends to vendor selection, aiding buyers in choosing the right cloud services and software providers based on their specific criteria. We streamline the implementation process, offering expertise in migrating existing systems to the cloud or deploying new software services.; ; Throughout the engagement, we prioritise security, integrating robust measures such as identity and access management, encryption, and monitoring. We conduct hands-on training sessions to empower buyers' teams with the knowledge needed for successful cloud adoption. Additionally, our service includes ongoing support, ensuring a smooth transition and continuous optimisation of cloud resources. By aligning our approach with buyers' strategic goals, we enable them to harness the full potential of cloud technologies.
• Planning service works with specific services: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: Yes
• How the setup or migration service works: Our service specialises in facilitating seamless and efficient migrations to the cloud or transitions between cloud services, ensuring buyers harness the full benefits of cloud computing. Beginning with a comprehensive assessment of existing systems, applications, and data, we work closely with buyers to develop a customised migration strategy aligned with their business goals.; ; Our experts guide buyers through the intricate process of selecting the most suitable cloud platform, considering factors like performance, scalability, and cost-efficiency. We provide a detailed roadmap for the migration, outlining key milestones, timelines, and resource requirements. Throughout the migration, we prioritise data security, implementing robust encryption and access controls to safeguard sensitive information.; ; Whether it's a lift-and-shift approach or a more complex re-architecture, our service ensures minimal disruption to operations. We leverage automation tools and best practices to streamline the migration process, optimising for speed and efficiency. Our hands-on support extends to resolving any challenges that may arise during the transition, fostering a smooth and successful migration experience.; ; Post-migration, we conduct thorough testing and performance monitoring to guarantee that systems are operating at peak efficiency. Our commitment to ongoing support helps buyers navigate any post-migration adjustments and continually optimise their cloud environment.
• Setup or migration service is for specific cloud services: No

Quality assurance and performance testing

• Quality assurance and performance testing service: Yes
• How the quality assurance and performance testing works: Our service is pivotal in ensuring the excellence of buyers' systems, providing comprehensive quality assurance (QA) and performance testing solutions. We closely collaborate with buyers to tailor testing objectives, success criteria, and key performance indicators to their unique needs.; ; Our skilled professionals conduct in-depth QA assessments, identifying and resolving potential issues in software and system configurations. We craft and execute robust test plans, covering functional testing, security testing, and scalability assessments. Central to our approach is performance testing, where we replicate diverse workloads to evaluate system responsiveness, stability, and scalability across various scenarios.; ; Using a combination of automated testing tools and manual methodologies, we verify the reliability and efficiency of applications, mitigating the risk of defects and ensuring a positive end-user experience. Our iterative approach enables us to refine and optimise systems based on testing results. Through rigorous QA and performance testing, we empower buyers to deploy resilient, high-performing systems that not only meet but surpass their expectations.

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: No

Ongoing support

• Ongoing support service: Yes
• Types of service supported:
  • Buyer hosting or software
  • Hosting or software provided by your organisation
  • Hosting or software provided by a third-party organisation
• How the support service works: As a Managed Security Services Provider (MSSP), we offer comprehensive support for cloud hosting and software services. Our MSSP model involves continuous monitoring, threat detection, and incident response to ensure the security of cloud environments. We implement robust security measures, including identity and access management, encryption, and compliance adherence. Proactive risk assessments and vulnerability management are integral to our service, addressing potential threats before they escalate. Additionally, we provide ongoing support for system configurations, performance optimisation, and efficient resource utilisation. Our MSSP approach emphasises a strategic security roadmap, aligning with industry standards and regulations, to ensure clients maintain a resilient and secure posture in their cloud hosting or software services.

Service scope

• Service constraints: Our remote service offering comes with inherent constraints, primarily related to its remote nature. These include limited physical access, dependence on stable network connectivity, challenges in troubleshooting complex issues remotely, potential security risks, occasional communication challenges, and the absence of face-to-face interactions. While we strive to mitigate these constraints through robust security measures, effective communication tools, and proactive measures, it's important to acknowledge the limitations associated with providing services in a remote capacity.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Our response time to questions depends on Service Level Agreement (SLA) agreements and the ticket's priority. We prioritise swift responses based on the urgency and criticality defined in SLAs, ensuring timely resolution of inquiries. The specific SLA terms and ticket priorities guide our commitment to providing efficient and effective support to address questions promptly.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Support levels: Our Support Level Agreements (SLAs) are designed to deliver timely and effective assistance. Users benefit from dedicated cloud engineers available to answer calls and address inquiries. Our SLA categorises issues into four priority levels, each with a corresponding response time commitment. Priority 1 (P1) urgent issues receive a rapid response within 30 minutes, ensuring critical problems are swiftly addressed. High-priority (P2) concerns are attended to within 2 hours, maintaining a prompt response for significant issues. Medium (P3) priority issues receive attention within 4 hours, and low-priority (P4) matters are addressed within 8 hours. These SLAs aim to provide a structured and responsive support framework, allowing users to receive assistance tailored to the urgency and criticality of their specific needs.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BRITISH ASSESSMENT BUREAU LTD
• ISO/IEC 27001 accreditation date: 01/05/2024
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • Amazon Web Services
  • Google Cloud
  • Microsoft Azure
  • EC-Council Ethical Hacker
  • ISC2 - CISSP

Social Value

• Social Value:

  Social Value

  Tackling economic inequality

  Tackling economic inequality

  Tackling economic inequality within the secure nexus framework involves strategic procurement practices aimed at promoting fair wages, supporting local businesses, and fostering job opportunities for marginalized communities. By prioritizing contracts with suppliers who demonstrate commitment to equitable employment practices and investing in initiatives that uplift disadvantaged groups, the secure nexus approach not only enhances economic stability but also cultivates a more inclusive and resilient society.

Pricing

• Price: £300 a unit an hour
• Discount for educational organisations: Yes

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at rsetchfield@securenexus.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.